$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/0/43A480538BE8801E606CB416A45E3AA47153C1FC.cer File: 43A480538BE8801E606CB416A45E3AA47153C1FC.cer (raw, json) Hash identifier: vfkQ4XinY+Gm8ca84ZcfN31yCMnBb5bwA4FlfwgZ8D4= Subject key identifier: 43:A4:80:53:8B:E8:80:1E:60:6C:B4:16:A4:5E:3A:A4:71:53:C1:FC Authority key identifier: C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 Certificate issuer: /CN=A91BDB290000/serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Certificate serial: 42189FFE6431330941F6E1B106C0CF74F2F82B29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Manifest: rsync://rpkica.twnic.tw/rpki/GAMBESON/1/43A480538BE8801E606CB416A45E3AA47153C1FC.mft caRepository: rsync://rpkica.twnic.tw/rpki/GAMBESON/1/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:56 +0000 Certificate not after: Mon 10 May 2027 15:50:56 +0000 Subordinate resources: IP: 165.101.152.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:18:9f:fe:64:31:33:09:41:f6:e1:b1:06:c0:cf:74:f2:f8:2b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Validity Not Before: May 11 15:45:56 2026 GMT Not After : May 10 15:50:56 2027 GMT Subject: CN=43A480538BE8801E606CB416A45E3AA47153C1FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:32:be:3e:e8:92:11:c2:04:57:57:a4:5f:94: 2e:b3:bd:02:3f:06:ee:92:34:cd:0d:a9:bd:d6:27: b0:f5:60:ec:eb:99:a0:c2:ce:cb:c9:c0:35:80:02: 02:3a:28:a0:9e:64:57:75:d2:0d:45:d9:da:7a:c3: 59:21:5e:d6:39:78:90:20:bc:24:82:4e:de:6b:d0: 5a:2a:f0:b5:c9:6f:15:cf:d6:13:79:56:d6:66:f7: 43:c4:5b:5b:66:58:92:21:4a:3e:96:d6:da:0b:f0: 96:25:65:4d:97:ad:20:74:dd:5a:93:a2:76:13:dc: ef:a6:85:d1:41:ae:86:74:2f:6e:cc:41:d4:9f:6d: 16:66:b3:83:f9:e6:10:64:3c:27:90:0c:d5:3a:e3: 2b:4b:64:10:a5:da:4f:51:4f:62:12:18:10:5a:5b: 33:b9:cc:a6:b0:5d:79:a8:56:5f:02:d0:a7:b7:3b: cb:8e:00:e3:07:df:82:70:cf:c3:44:08:7e:f9:4c: 40:5c:19:6b:4e:1d:a3:4d:01:3a:25:9b:52:6d:f0: e9:76:12:86:f1:1e:5b:fe:b2:a5:c4:82:d7:eb:c5: be:2f:6d:37:dc:10:b1:17:75:13:58:bc:17:a0:4a: 7f:d5:3b:e6:ff:88:7f:4c:74:76:4b:ae:2b:00:16: 93:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 43:A4:80:53:8B:E8:80:1E:60:6C:B4:16:A4:5E:3A:A4:71:53:C1:FC X509v3 Authority Key Identifier: keyid:C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/1/43A480538BE8801E606CB416A45E3AA47153C1FC.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.152.0/23 Signature Algorithm: sha256WithRSAEncryption 49:69:d4:b9:1a:e6:85:7e:68:53:9a:2d:77:a6:83:09:4e:9a: 0b:f0:07:ef:ea:83:bb:ca:8f:c3:08:0a:ef:80:95:57:78:1f: 5d:02:ac:88:20:32:5f:b5:58:81:6f:5c:a5:b6:17:31:6f:75: 5b:52:ed:d3:25:99:64:26:cc:cf:cf:19:f8:02:b3:59:20:c5: a9:84:03:ef:4c:d2:2a:d3:e0:87:99:fe:52:27:17:1f:ed:6c: 80:d4:0d:22:09:b4:ba:f7:60:7d:ac:85:a3:ef:51:bd:0e:7b: f6:c8:96:14:26:64:ba:b8:55:bb:13:e1:c5:76:4c:fd:e5:00: 2a:95:6d:eb:8a:70:a6:5e:08:39:a7:55:56:19:c9:2d:0c:59: 8e:d8:0e:49:ca:38:b5:72:57:b7:95:ad:a4:16:ab:11:a2:0e: 8e:81:6f:2b:a2:b3:90:2e:22:30:59:3a:a1:dd:7b:0c:3a:ba: 9c:7e:50:86:e8:6d:db:96:1a:63:6e:9e:13:59:e5:b2:b5:ef: 19:9e:e6:de:90:d8:87:8c:30:c8:01:47:5e:a1:9e:b1:75:be: fa:d3:45:d2:ca:77:6d:26:58:0f:3b:36:7f:b8:2c:80:5c:21: 4d:21:b5:99:1d:1c:b4:37:c5:1f:ae:ef:e7:9e:cb:f0:86:b3: bd:ae:ef:2a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUQhif/mQxMwlB9uGxBsDPdPL4KykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhDM0YyN0FCQkE0 MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzMB4XDTI2MDUxMTE1NDU1NloX DTI3MDUxMDE1NTA1NlowMzExMC8GA1UEAxMoNDNBNDgwNTM4QkU4ODAxRTYwNkNC NDE2QTQ1RTNBQTQ3MTUzQzFGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM8yvj7okhHCBFdXpF+ULrO9Aj8G7pI0zQ2pvdYnsPVg7OuZoMLOy8nANYAC AjoooJ5kV3XSDUXZ2nrDWSFe1jl4kCC8JIJO3mvQWirwtclvFc/WE3lW1mb3Q8Rb W2ZYkiFKPpbW2gvwliVlTZetIHTdWpOidhPc76aF0UGuhnQvbsxB1J9tFmazg/nm EGQ8J5AM1TrjK0tkEKXaT1FPYhIYEFpbM7nMprBdeahWXwLQp7c7y44A4wffgnDP w0QIfvlMQFwZa04do00BOiWbUm3w6XYShvEeW/6ypcSC1+vFvi9tN9wQsRd1E1i8 F6BKf9U75v+If0x0dkuuKwAWk+0CAwEAAaOCAmowggJmMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEOkgFOL6IAeYGy0FqReOqRxU8H8MB8GA1UdIwQYMBaAFMPy erukDQwUbmWZ4xmy+LeWVqbzMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMC9DM0Yy N0FCQkE0MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzLmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi93X0o2dTZR TkRCUnVaWm5qR2JMNHQ1Wldwdk0uY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1CRVNPTi8x LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1C RVNPTi8xLzQzQTQ4MDUzOEJFODgwMUU2MDZDQjQxNkE0NUUzQUE0NzE1M0MxRkMu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAGlZZgwDQYJKoZIhvcNAQELBQADggEBAElp1Lka 5oV+aFOaLXemgwlOmgvwB+/qg7vKj8MICu+AlVd4H10CrIggMl+1WIFvXKW2FzFv dVtS7dMlmWQmzM/PGfgCs1kgxamEA+9M0irT4IeZ/lInFx/tbIDUDSIJtLr3YH2s haPvUb0Oe/bIlhQmZLq4VbsT4cV2TP3lACqVbeuKcKZeCDmnVVYZyS0MWY7YDknK OLVyV7eVraQWqxGiDo6Bbyuis5AuIjBZOqHdeww6upx+UIbobduWGmNunhNZ5bK1 7xme5t6Q2IeMMMgBR16hnrF1vvrTRdLKd20mWA87Nn+4LIBcIU0htZkdHLQ3xR+u 7+eey/CGs72u7yo= -----END CERTIFICATE-----Generated at Tue May 12 22:32:26 2026 by rpki-client